1 / 12

Internet Voting

CS 395T. Internet Voting. Ashok. What is “E-voting”. Thomas Edison received US patent number 90,646 for an electrographic vote recorder in 1869. Specific implementations : electronic counting kiosk voting – Direct Recording Electronic (DRE) machines

hnegrete
Download Presentation

Internet Voting

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CS 395T Internet Voting Ashok

  2. What is “E-voting” Thomas Edison received US patent number 90,646 for an electrographic vote recorder in 1869. Specific implementations : • electronic counting • kiosk voting – Direct Recording Electronic (DRE) machines • remote electronic voting (REV) – Internet (voting applet, website), text messaging, touch-tone phone, etc. DREs and REVs fail to provide voter-verifiable audit trails, undermining voter confidence.

  3. Security Criteria Criteria fall in 2 categories - keep votes secret, and provide secure and reliable voting infrastructure. Most popularly accepted (technological) : • system integrity and reliability – vote counting must produce reproducibly correct results • data integrity and reliability • voter anonymity and data confidentiality – voting counts must be protected from outside reading during voting process • operator authentication – no trapdoors for maintenance or setup! • system accountability

  4. Security Criteria cont’d • system disclosability • system availability • usability Challenge comes from contradiction between voter confidentiality and system accountability.

  5. Problems & Attacks Overriding problem is voter disenfranchisement

  6. Problems & Attacks cont’d • Internet voting should at a minimum address issues and doubts of absentee voting • Coercion even more problematic with Internet voting • Internet facilitates large-scale vote selling and buying, perhaps automated • Malicious software and access to shared computers • Data in system need not need modification but public disclosure, even after polling period • (last-day) DoS attacks • DNS attacks • Priority of electronic vs. traditional ballots

  7. Framework

  8. Trustworthy Entities

  9. Blinding Signatures and Anonymous Channels

  10. Secure Electronic Registration and Voting Experiment(SERVE) • Built by Accenture and DoD Federal Voting Assistance Program (FVAP) • Covered by Uniformed and Overseas Citizens Absentee Voting Act (UOCAVA) • Follow-up to Voting Over the Internet (VOI) • Built by Booz-Allen & Hamilton with different architecture and codebase • Used in 2000 election to collect 84 votes in Florida, South Carolina, Texas, and Utah • FVAP’s 2001 Voting Over the Internet Pilot Project Assessment Report - 50 votes in Florida! • Abandoned over DoS and malicious software exposure

  11. LEO can download fast enough to deduce vote - voter mapping { Ballot } Download request for encrypted votes and voter list Kleo SERVE admins can maybe view vote! SERVE cont’d { Ballot, V } SERVE Kserve Voter Submitted from ActiveX control from IE SERVE retains encrypted ballot LEO

  12. SERVE cont’d • Vote selling / buying still possible • selling of voting credentials • vote from different addresses using proxy server; orgs that use same IP address from all users in domain • Backdoors – OS, games, device drivers, multimedia, browser plugins, screen savers, etc. • ActiveX control itself • No voter verification • Adversary can spoof voting server

More Related